-
Bug
-
Resolution: Fixed
-
Low
-
4.8.3
-
Severity 2 - Major
-
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the MessageBundleResource within Atlassian Gadgets.
The affected versions are before version 4.8.4.
Affected versions:
- version < 4.8.4
Fixed versions:
- 4.8.4
- 4.9.0
- was cloned as
-
-
- Closed
-
[FE-7332] DoS vulnerability in MessageBundleResource - CVE-2020-14191
| Labels | Original: advisory advisory-to-release cvss-medium release-48x release-490 security | New: advisory advisory-to-release cvss-medium release-48x security |
| Labels | Original: advisory advisory-to-release cvss-medium release-490 security | New: advisory advisory-to-release cvss-medium release-48x release-490 security |
| Labels | Original: advisory advisory-to-release cvss-medium security | New: advisory advisory-to-release cvss-medium release-490 security |
| Fix Version/s | Original: 4.9.0 [ 90694 ] |
| Labels | Original: advisory advisory-to-release cve-in-progress cvss-medium security | New: advisory advisory-to-release cvss-medium security |
| Summary | Original: DoS vulnerability in MessageBundleResource - CVE-PENDING | New: DoS vulnerability in MessageBundleResource - CVE-2020-14191 |
| Description |
Original:
Affected versions of Atlassian FishEye/Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the MessageBundleResource within Atlassian Gadgets.
The affected versions are before version 4.8.4. *Affected versions:* * version < 4.8.4 *Fixed versions:* * 4.8.4 * 4.9.0 |
New:
Affected versions of Atlassian Fisheye/Crucible allow remote attackers to impact the application's availability via a Denial of Service (DoS) vulnerability in the MessageBundleResource within Atlassian Gadgets.
The affected versions are before version 4.8.4. *Affected versions:* * version < 4.8.4 *Fixed versions:* * 4.8.4 * 4.9.0 |
| Labels | Original: advisory cve-in-progress cvss-medium security | New: advisory advisory-to-release cve-in-progress cvss-medium security |
| Labels | Original: advisory cvss-medium security | New: advisory cve-in-progress cvss-medium security |
| Security | Original: Reporter and Atlassian Staff [ 10751 ] |